Only 2 days left! Apply now in only 2 Minutes for FREE.

Cybersecurity Automation Lead

Summary Sheet: I.T. & Communications


Advertiser Name	MCKESSON	Advertiser Type:	Company
Classification:	I.T. & Communications	Subclassification:
Country:	Canada	Location:	Canada
Language:	English - United Kingdom (en-GB)	Contact Name:
Employment Type:	Permanent	Workhours:	Not Specified

Position: Cybersecurity Automation Lead

Description: McKesson is an impact-driven, Fortune 10 company that touches virtually every aspect of healthcare. We are known for delivering insights, products, and services that make quality care more accessible and affordable. Here, we focus on the health, happiness, and well-being of you and those we serve - we care.

What you do at McKesson matters. We foster a culture where you can grow, make an impact, and are empowered to bring new ideas. Together, we thrive as we shape the future of health for patients, our communities, and our people. If you want to be part of tomorrow's health today, we want to hear from you.

Job Title

Lead Automation Engineer

Summary We are seeking a Lead Automation Engineer (P5) to design, deliver, and scale automation that powers our cybersecurity platforms and operations. You will own the automation strategy and execution across SIEM, SOAR, endpoint, vulnerability, and cloud-security workflows-eliminating manual toil, standardizing deployments, and embedding reliability into the way we operate.

Location note: this is a remote role within 50km of Mississagua Ontario or St Laurent Quebec, or Calgary, AB, or Vancouver, BC

What You'll Do

Own the automation roadmap aligned to platform runbooks and quarterly objectives; prioritize high-value use cases that reduce manual effort and improve speed/quality.

Design, implement, and maintain Python-based playbooks, micro-services, and scripts for enrichment, decisioning, remediation, and evidence collection.

Deliver self-service capabilities (CLI/ChatOps/UI) that enable platform teams and SOC/IR to perform standardized actions safely and repeatedly.

Build robust API integrations between security tools and enterprise systems (e.g., SIEM/SOAR, endpoint, vulnerability scanners, ticketing/ServiceNow, CMDB, identity, cloud services).

Implement CI/CD workflows (GitHub Actions/Azure DevOps/GitLab CI), environment promotion, secrets management, and rollback safety for automation code.

Add observability to automation (structured logging, metrics, traces, alerts); track playbook success/failure, latency, and error budgets.

Act as technical lead for automation initiatives; mentor engineers on Python, integration patterns, and CI/CD.

Partner closely with SOC/IR, Platform Ops, Cloud/Infra, and GRC to align automation to operational, resilience, and compliance needs.

What You Bring

Expert-level Python (designing maintainable packages/services, async patterns where useful, testing, packaging, dependency management).

Practical experience building API integrations (REST/GraphQL), handling auth flows (OAuth2, JWT), and working with JSON/structured logs.

Demonstrated DevOps capability: CI/CD pipelines, artifact versioning, release orchestration, and basic container familiarity (Docker).

Hands-on with at least two security/platform domains (e.g., SIEM/SOAR, endpoint/EDR, vulnerability management, email/data security, cloud security).

Strong communication skills and a track record of shipping reliable automation that measurably improves operations.

Minimum Requirements

Degree or equivalent and typically requires 10+ years of relevant experience. Less years required if has relevant Master's or Doctorate qualifications.

Preferable Skills & Experience

Experience with Terraform or Ansible for provisioning/configuration.

Familiarity with event-driven patterns (webhooks, message queues) and serverless runtimes.

Experience optimizing cost/throughput for data pipelines or security platform ingestion.

Comfort with basic front-end for internal self-service tools (e.g., lightweight UIs, ChatOps).

What Success Would Look Like

Toil reduction and time-to-complete improvements for automated workflows.

Playbook success rate, latency, and reduction in manual escalations.

Coverage of automation across priority platforms (e.g., % alerts triaged/enriched automatically, % standard changes automated).

Deployment reliability (pipeline success, rollback readiness, change-related incident reduction).

Quality and completeness of audit-ready evidence produced automatically by automation jobs.

Tools & Environment

Language: Python (primary)

DevOps: GitHub/GitHub Actions or Azure DevOps; container builds; secrets management (e.g., Key Vault/Secrets Manager)

Integrations: REST/GraphQL APIs, ServiceNow/CMDB, identity platforms, cloud provider SDKs

Security platforms: SIEM/SOAR (e.g., Splunk, Cortex XSIAM/XSOAR), EDR (e.g., SentinelOne/Defender), Vulnerability Mgmt (e.g., Rapid7/Tenable), Email/Data Security (e.g., MDO/Proofpoint)

Nice-to-have: Terraform/Ansible, message queues (Event Hub/Kafka/SQS), simple UI/ChatOps front-ends

Intitul� du poste

Ing�nieur/e principal en automatisation

R�sum� Nous recherchons un/e Ing�nieur/e principal en automatisation (P5) pour concevoir, livrer et faire �voluer des automatisations qui alimentent nos plateformes et op�rations de cybers�curit�. Vous serez responsable de la strat�gie et de l'ex�cution de l'automatisation � travers les flux SIEM, SOAR, endpoints, gestion des vuln�rabilit�s et s�curit� cloud - en �liminant les t�ches manuelles, en standardisant les d�ploiements et en int�grant la fiabilit� dans nos op�rations.

Note:

Poste � distance, mais le candidat doit r�sider dans un rayon de 50 km de l'une des localisations suivantes : Mississauga, Ontario, Saint-Laurent, Qu�bec, Calgary, Alberta, Vancouver, Colombie-Britannique

Ce que vous ferez

D�finir et piloter la feuille de route d'automatisation align�e sur les runbooks des plateformes et les objectifs trimestriels ; prioriser les cas d'usage � forte valeur ajout�e qui r�duisent l'effort manuel et am�liorent la rapidit�/la qualit�.

Concevoir, impl�menter et maintenir des playbooks, micro-services et scripts en Python pour l'enrichissement, la prise de d�cision, la rem�diation et la collecte de preuves.

Fournir des capacit�s en libre-service (CLI/ChatOps/UI) permettant aux �quipes plateformes et SOC/IR d'ex�cuter des actions standardis�es de mani�re s�re et r�p�t�e.

D�velopper des int�grations API robustes entre les outils de s�curit� et les syst�mes d'entreprise (ex. SIEM/SOAR, endpoints, scanners de vuln�rabilit�s, ServiceNow/tickets, CMDB, identit�, services cloud).

Mettre en œuvre des workflows CI/CD (GitHub Actions/Azure DevOps/GitLab CI), la promotion des environnements, la gestion des secrets et la s�curit� des rollback pour le code d'automatisation.

Ajouter de l'observabilit� � l'automatisation (logs structur�s, m�triques, traces, alertes) ; suivre le succ�s/�chec des playbooks, la latence et les budgets d'erreurs.

Agir en tant que leader technique pour les initiatives d'automatisation ; encadrer les ing�nieurs sur Python, les mod�les d'int�gration et le CI/CD.

Collaborer �troitement avec SOC/IR, Ops plateformes, Cloud/Infra et GRC pour aligner l'automatisation sur les besoins op�rationnels, de r�silience et de conformit�.

Ce que vous apportez

Expertise avanc�e en Python (conception de packages/services maintenables, mod�les asynchrones, tests, packaging, gestion des d�pendances).

Exp�rience pratique dans la cr�ation d'int�grations API (REST/GraphQL), la gestion des flux d'authentification (OAuth2, JWT) et la manipulation de JSON/logs structur�s.

Comp�tences d�montr�es en DevOps : pipelines CI/CD, versioning des artefacts, orchestration des releases et familiarit� avec les conteneurs (Docker).

Exp�rience pratique dans au moins deux domaines s�curit�/plateformes (ex. SIEM/SOAR, endpoint/EDR, gestion des vuln�rabilit�s, s�curit� email/donn�es, s�curit� cloud).

Excellentes comp�tences en communication et historique de livraisons fiables d'automatisations am�liorant les op�rations de mani�re mesurable.

Exigences minimales Dipl�me ou �quivalent et g�n�ralement 10+ ann�es d'exp�rience pertinente. Moins d'ann�es requises si titulaire d'un Master ou Doctorat pertinent.

Comp�tences et exp�riences souhait�es

Exp�rience avec Terraform ou Ansible pour le provisioning/la configuration.

Familiarit� avec les mod�les �v�nementiels (webhooks, files de messages) et les environnements serverless.

Exp�rience dans l'optimisation des co�ts/d�bits pour les pipelines de donn�es ou l'ingestion des plateformes de s�curit�.

Aisance avec le d�veloppement front-end basique pour des outils internes en libre-service (ex. interfaces l�g�res, ChatOps).

Indicateur de succ�s

R�duction des t�ches manuelles et am�lioration des d�lais d'ex�cution pour les workflows automatis�s.

Taux de succ�s des playbooks, latence et r�duction des escalades manuelles.

Couverture de l'automatisation sur les plateformes prioritaires (ex. % d'alertes tri�es/enrichies automatiquement, % de changements standard automatis�s).

Fiabilit� des d�ploiements (succ�s des pipelines, pr�paration des rollback, r�duction des incidents li�s aux changements).

Qualit� et exhaustivit� des preuves pr�tes pour audit g�n�r�es automatiquement par les jobs d'automatisation.

Outils et environnement

Langage : Python (principal)

DevOps : GitHub/GitHub Actions ou Azure DevOps ; builds de conteneurs ; gestion des secrets (ex . click apply for full job details

List of Jobs - Sitemap - jobdyn.com
web-set.com